Google Chrome vulnerabilities

CVE-2011-3924 [HIGH] CWE-416 CVE-2011-3924: Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM selections.

CVE-2011-3927 [HIGH] CWE-665 CVE-2011-3927: Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization of v Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization of values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2011-3926 [HIGH] CWE-787 CVE-2011-3926: Heap-based buffer overflow in the tree builder in Google Chrome before 16.0.912.77 allows remote att Heap-based buffer overflow in the tree builder in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2011-3925 [HIGH] CWE-416 CVE-2011-3925: Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via vectors related to a navigation entry and an interstitial page.

CVE-2011-3928 [HIGH] CWE-416 CVE-2011-3928: Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling.

CVE-2011-3922 [HIGH] CWE-787 CVE-2011-3922: Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows remote attackers to cause a d Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to glyph handling.

CVE-2011-3921 [HIGH] CWE-416 CVE-2011-3921: Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving animation frames.

CVE-2011-3919 [HIGH] CWE-787 CVE-2011-3919: Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote at Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2011-3915 [HIGH] CWE-120 CVE-2011-3915: Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of ser Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF fonts.

CVE-2011-3914 [HIGH] CWE-787 CVE-2011-3914: The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0 The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

CVE-2011-3913 [HIGH] CWE-416 CVE-2011-3913: Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.

CVE-2011-3917 [HIGH] CWE-787 CVE-2011-3917: Stack-based buffer overflow in FileWatcher in Google Chrome before 16.0.912.63 allows remote attacke Stack-based buffer overflow in FileWatcher in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2011-3904 [HIGH] CWE-416 CVE-2011-3904: Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to bidirectional text (aka bidi) handling.

CVE-2011-3912 [HIGH] CWE-416 CVE-2011-3912: Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters.

CVE-2011-3911 [MEDIUM] CWE-125 CVE-2011-3911: Google Chrome before 16.0.912.63 does not properly handle PDF documents, which allows remote attacke Google Chrome before 16.0.912.63 does not properly handle PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3907 [MEDIUM] CWE-20 CVE-2011-3907: The view-source feature in Google Chrome before 16.0.912.63 allows remote attackers to spoof the URL The view-source feature in Google Chrome before 16.0.912.63 allows remote attackers to spoof the URL bar via unspecified vectors.

CVE-2011-3910 [MEDIUM] CWE-125 CVE-2011-3910: Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote atta Google Chrome before 16.0.912.63 does not properly handle YUV video frames, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3916 [MEDIUM] CWE-125 CVE-2011-3916: Google Chrome before 16.0.912.63 does not properly handle PDF cross references, which allows remote Google Chrome before 16.0.912.63 does not properly handle PDF cross references, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3905 [MEDIUM] CWE-125 CVE-2011-3905: libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of s libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3909 [MEDIUM] CWE-119 CVE-2011-3909: The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platfo The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64-bit platforms does not properly manage property arrays, which allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors.